Security Certification Guide

The Professionals Guide to IT Security Certification Regardless of an individual’s background, getting into IT Security requires certification. The big question, as always, is: What’s the path? What are the offerings? Hopefully, this guide will help you in your pursuit of security certification.

Uploaded by

kelly11111

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

202 views

Security Certification Guide

Uploaded by

kelly11111

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 3

Security Certification Guide

http://www.intrinsec.ca/security-certification-guide.html

Navigation: Home

About Intrinsec

Course Schedule

Whitepapers

Learn. Play. Win

Security Certification Guide

search...

Seminars
Cloud Computing Session Executive Security Awareness Session Web Security Session Zero Day and APT Session

The Professionals Guide to IT Security Certification Regardless of an individuals background, getting into IT Security requires certification. The big question, as always, is: Whats the path? What are the offerings? Hopefully, this guide will help you in your pursuit of security certification. First off, there are really three levels of certification. Easy right? If you are looking to work with the Department of Defence in the United States, you must be aware of DoD 8570. This directive states that all IA (Information Assurance) personnel (managerial AND technical) MUST possess security certification as a condition of employment. Even if you arent applying for a Government DoD position, it is quite literally a matter of time before certification is required by all large companies and Government departments around the world. Here are the levels, as stipulated by the DoD and mimicked by organizations around the world: Technical Information Assurance (IA) Positions Level 1 CompTIA A+ CompTIA Network + (ISC)2 SSCP Managerial Information Assurance (IA) Positions Level 1 Security+ GSLC GISF CAP Level 2 GSEC Security+ SCNP (ISC)2 SSCP Level 3 GCIH GSE
2

Awareness Training
End User Security Awareness Training Security Awareness for IT staff

Security Training
Intrinsec Security MENTORING Disaster Recovery Training Technical Ethical Hacking Forensics Training Threat and Risk Assessment Vulnerability Assessment Training SIEM Training

Level 2 GSLC (ISC) CISSP CISM CAP Level 3 (ISC) CISSP CISM GSLC
2 2

(ISC) CISSP CISA SCNA Note: All linked items can be followed to learn more about our offerings. As the above table shows, there are really 4 organizations whose certifications are recognized by the DoD 8570 directive. CompTIA (A+, Network+, Security+) CompTIA programs are an open vendor-neutral education system. Various publications and resources are made available for students to prepare for the CompTIA exams.

Certification Training

1 of 3

25/03/2011 4:49 PM

Security Certification Guide

http://www.intrinsec.ca/security-certification-guide.html

Security+ Training CISSP+ Training CISSP-ISSAP CISSP ISSEP CISA Training CISM Training

The Security+ should be seen as a stepping stone certification. Not only does the course material and associated exam prepare an individual for an IT security career, the successful candidate can then go on to other training, such as the CISSP. Intrinsec Education prepares candidates to succeed on the Security+ exam by supplying students with Real-World experienced instructors, a courseware bundle that includes multiple books and LIFETIME support to help you pass the exam.

Consulting Services
Intrinsec Security MENTORING Vulnerability Assessment Penetration Testing Threat and Risk Assessment Consulting

ISACA (CISA, CISM) Both the CISM and CISA can be considered advanced certifications. The Certified Information Security Manager (CISM) and Certified Information Security Auditor (CISA) certification exams are only available twice a year (June and December). Intrinsec Education offers courses for both CISM and CISA. As the exams are written in June and December, public courses are available starting in Late March Late May (June exam preparation) and Late September Late November (December exam preparation) for both offerings.

(ISC) (CAP, SSCP, CISSP) The CISSP is still considered the gold standard certification for Information Security professionals. Although declining in popularity, we believe this is due to the number of existing CISSP certified individuals and not the contents of the material or the certified individuals. Unlike the CISM or CISA exams, the CISSP and SSCP exams are delivered throughout the year. However, they are not computer-based exams. Standard proctored exams are usually run on a Saturday morning in various major centres around the world. Intrinsec Education prepares candidates to succeed on the CISSP exam by supplying students with Real-World experienced instructors, a courseware bundle that includes multiple books and LIFETIME support to help you pass the exam.

Security Resources
Security News Feeds Tutorials Network Port Listings Security Tools Whitepapers Security Certification Guide Salary Reports

SANS (GSEC, GCIH, GSE, GSLC, GISF) SANS is a proprietary closed education system. They offer their own courseware to meet their own exams. External companies are not allowed to train using SANS material, and therefore, are unable to train students to pass the SANS exams. Of note, SANS exams are open book computer exams. Additionally, from past experience (the author is SANS certified), the exam questions often are direct sentences from the courseware. This is greatly different than in the past when SANS required a potential certified individual create a discussion paper on a subject of their choice. This written paper was a dramatic differentiator in the quality of the certification. Since adopting an open book internet based exam, the street credibility of SANS certification has been somewhat diminished in the eyes of hiring authorities. Although the written paper option still exists and is labelled as a gold certification, most companies accept either a gold or silver certification as condition of employment. The SANS institute does remain a leading thought leader in the security community and offers a great deal of security knowledge on their various websites. Hopefully this article has helped you in your pursuit of Security Certification. If you have any questions about security certification, please do not hesitate to contact us to help you map your security career. Contact us at info (at) intrinsec.ca.

Corporate
About Us Client List Contact Us Intrinsec Employment Privacy Policy